Search CVE reports
501 – 510 of 62102 results
alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the "userName" parameter.
1 affected package
sogo
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| sogo | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
body-parser 2.2.0 is vulnerable to denial of service due to inefficient handling of URL-encoded bodies with very large numbers of parameters. An attacker can send payloads containing thousands of parameters within the default...
1 affected package
node-body-parser
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| node-body-parser | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Not in release
A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new agent using a different Trusted Platform Module (TPM) device but claiming an existing agent's unique identifier (UUID)....
1 affected package
keylime
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| keylime | Not in release | Not in release | — | — |
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: fix crash in set_mesh_sync and set_mesh_complete There is a BUG: KASAN: stack-out-of-bounds in set_mesh_sync due to memcpy from badly declared...
149 affected packages
linux, linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | Not affected | Not affected | Not affected | Not affected |
| linux-hwe | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.11 | Ignored | Not in release | Not in release | Not in release |
| linux-hwe-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-kvm | Not in release | Not affected | Not affected | Not affected |
| linux-allwinner-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Not affected | Not affected | Ignored |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.11 | Ignored | Not in release | Not in release | Not in release |
| linux-azure-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde | Not affected | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-fde-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-fde-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-nvidia | Not affected | Not in release | Not in release | Not in release |
| linux-azure-nvidia-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-bluefield | Not in release | Not in release | Not affected | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Ignored |
| linux-fips | Not affected | Not affected | Not affected | Not affected |
| linux-aws-fips | Not affected | Not affected | Not affected | Not affected |
| linux-azure-fips | Not affected | Not affected | Not affected | Not affected |
| linux-gcp-fips | Not affected | Not affected | Not affected | Not affected |
| linux-gcp | Not affected | Not affected | Not affected | Ignored |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.11 | Ignored | Not in release | Not in release | Not in release |
| linux-gcp-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-gke | Not affected | Not affected | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.15 | Not in release | Not in release | Ignored | Not in release |
| linux-gkeop | Not affected | Not affected | Ignored | Not in release |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gkeop-5.15 | Not in release | Not in release | Ignored | Not in release |
| linux-ibm | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-intel-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-iot | Not in release | Not in release | Not affected | Not in release |
| linux-intel-iot-realtime | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.11 | Ignored | Not in release | Not in release | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-tegra-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-nvidia-tegra-igx | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Ignored |
| linux-oem-5.6 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.10 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.14 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.17 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.0 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.1 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.8 | Ignored | Not in release | Not in release | Not in release |
| linux-oem-6.11 | Ignored | Not in release | Not in release | Not in release |
| linux-oem-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Ignored |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-realtime | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-realtime-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-riscv | Ignored | Ignored | Ignored | Not in release |
| linux-riscv-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-riscv-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-6.14 | Ignored | Not in release | Not in release | Not in release |
| linux-starfive-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-starfive-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-starfive-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-xilinx | Not affected | Not in release | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release |
| linux-aws | Not affected | Not affected | Not affected | Not affected |
| linux-oracle | Not affected | Not affected | Not affected | Not affected |
| linux-raspi | Not affected | Not affected | Not affected | Not in release |
| linux-realtime | Not affected | Not affected | Not in release | Not in release |
| linux-oem-6.17 | Vulnerable | Not in release | Not in release | Not in release |
| linux-azure-fde-6.8 | Not in release | Not affected | Not in release | Not in release |
Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a DTLS handshake where SSL_get_app_data() returns NULL.
2 affected packages
libcoap2, libcoap3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcoap2 | Not in release | Needs evaluation | Needs evaluation | — |
| libcoap3 | Needs evaluation | Needs evaluation | — | — |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.
2 affected packages
libcoap2, libcoap3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcoap2 | Not in release | Needs evaluation | Needs evaluation | — |
| libcoap3 | Needs evaluation | Needs evaluation | — | — |
Array index error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_ex_data_X509_STORE_CTX_idx() to return -1.
2 affected packages
libcoap2, libcoap3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcoap2 | Not in release | Needs evaluation | Needs evaluation | — |
| libcoap3 | Needs evaluation | Needs evaluation | — | — |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.
2 affected packages
libcoap2, libcoap3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcoap2 | Not in release | Needs evaluation | Needs evaluation | — |
| libcoap3 | Needs evaluation | Needs evaluation | — | — |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.
2 affected packages
libcoap2, libcoap3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcoap2 | Not in release | Needs evaluation | Needs evaluation | — |
| libcoap3 | Needs evaluation | Needs evaluation | — | — |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.
2 affected packages
libcoap2, libcoap3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcoap2 | Not in release | Needs evaluation | Needs evaluation | — |
| libcoap3 | Needs evaluation | Needs evaluation | — | — |